PT-2024-6909 · Linux+5 · Linux Kernel+5

Sukrut Bellary

Published

2024-09-02

Updated

2025-09-29

CVE-2024-46741

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a double free of the 'buf' in the error path of the fastrpc req mmap() function in the Linux kernel. This occurs because the fastrpc buffer is freed in fastrpc req munmap impl() if unmap is successful, but there is an unconditional call to fastrpc buf free() at the end, triggering the double free. The vulnerability may allow an attacker to impact the confidentiality, integrity, and availability of protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Double Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-415

Related Identifiers

ALSA-2025_16880

ALT-PU-2024-12968

ALT-PU-2024-13260

ALT-PU-2024-13979

BDU:2024-08132

CVE-2024-46741

MGASA-2024-0316

MGASA-2024-0318

OESA-2025-1097

OPENSUSE-SU-2024_3551-1

OPENSUSE-SU-2024_3561-1

OPENSUSE-SU-2024_3564-1

SUSE-SU-2024:3551-1

SUSE-SU-2024:3553-1

SUSE-SU-2024:3561-1

SUSE-SU-2024:3564-1

SUSE-SU-2025:20073-1

SUSE-SU-2025:20077-1

USN-7154-1

USN-7154-2

USN-7155-1

USN-7156-1

USN-7196-1

Affected Products

Alt Linux

Linuxmint

Linux Kernel

Red Os

Suse

Ubuntu

PT-2024-6909 · Linux+5 · Linux Kernel+5

CVE-2024-46741

Weakness Enumeration

Related Identifiers

Affected Products

References · 1190